%term

The latest News and Information on Security Incident and Event Management.

Enhance Your Devo Data Search Capabilities with Stat Counts

Jul 21, 2022 By Devo In Devo

With today’s expanding attack surfaces and the growing sophistication of adversaries, exploding volumes of data are negatively affecting SOC teams’ success. According to the 2021 Devo SOC Performance Report, 67% of respondents said their lack of visibility into the attack surface makes working in the SOC painful.

Read Post

Devo

Read more about Enhance Your Devo Data Search Capabilities with Stat Counts

3 Important German BSI Documents Every SIEM & SOC Manager Needs To Know About

Jul 15, 2022 By Matthias Maier In Splunk

The German IT Security Act 2.0 (IT-SiG 2.0) has been in force since May 2021. Due to this new law, significantly more German companies have been classified as operators of critical infrastructures (KRITIS) than ever. This is a major cause of headaches for many managers. In addition, IT departments are starting to ask themselves: "Are we now regarded as KRITIS"? And if so, "What do we have to take into consideration?"

Read Post

Splunk

Read more about 3 Important German BSI Documents Every SIEM & SOC Manager Needs To Know About

RHONDOS and Devo Partner to Secure Organizations' Business-Critical SAP Data

Jul 14, 2022 By Brant Hubbard In Devo

RHONDOS is proud to have established a strategic partnership with Devo, the only cloud-native logging and security analytics platform. RHONDOS is bringing PowerConnect for SAP to Devo, and together we will provide mutual customers with an all-in-one solution so they can confidently address the question of what to do with SAP data.

Read Post

Devo

Read more about RHONDOS and Devo Partner to Secure Organizations' Business-Critical SAP Data

Selecting SIEM Tools - Questions to Consider

Jul 13, 2022 By Graylog In Graylog

So, you’ve done your homework. You’ve clearly defined business requirements, and you think you want to implement a Security Information and Event Management (SIEM) solution into your organization. Cloud migration and remote work have changed the way threat actors attack, and it feels like every day you read about a new methodology. While a lot of companies added a SIEM to their cybersecurity technology stack, you’re not sure whether you can afford one.

Read Post

Graylog

Read more about Selecting SIEM Tools - Questions to Consider

The Role of Community in the Journey to the Autonomous SOC

Jul 12, 2022 By Devo In Devo

No security team — at least no effective security team — can operate successfully in a silo. Even expert teams know the value of leveraging the power of the community to build effective security content, share intelligence, and keep current with best practices.

Read Post

Devo

Read more about The Role of Community in the Journey to the Autonomous SOC

New 1Password SIEM integration with Sumo Logic and Panther

Jul 12, 2022 By Matt O'Leary In 1Password

Reduce the time your team spends investigating security issues by using a customizable dashboard that shows your organization’s entire security posture. With the new Sumo Logic and Panther integrations for 1Password, you can monitor potential risks around company data or credentials stored within 1Password.

Read Post

1Password

Read more about New 1Password SIEM integration with Sumo Logic and Panther

geeks+gurus: SOAR: SOC Automation at its finest

Jul 7, 2022 By Sumo Logic In Sumo Logic

In this 25-minute conversation, Enrico Benzoni interviews Dario Forte, Michele Zambelli and Andrea Fumagalli, to discuss the role of automation in today's cybersecurity landscape. Where is SOAR headed in 2022? How long does it take to get a SOAR project off the ground?

View Video

Sumo Logic

Read more about geeks+gurus: SOAR: SOC Automation at its finest

geeks+gurus: Cloud Migration

Jul 7, 2022 By Sumo Logic In Sumo Logic

Join the geeks+gurus of Sumo Logic for an interactive conversation on how cloud migration helps businesses innovate faster, modernize aging infrastructure, scale globally, and get continuous real-time insights—even from complex, multi-cloud architectures.

View Video

Sumo Logic

Read more about geeks+gurus: Cloud Migration

End to End Incident Response Using Elastic Security

Jul 7, 2022 By Elastic In Elastic

Join James Spiteri, PMM Director for Elastic Security, as he walks through an entire incident response scenario using several features of the Elastic Search platform including Security features such as SIEM, Endpoint Security, osquery, correlation and case management. Observability features such as logging and APM are also covered as part of this investigative workflow. Additional References.

View Video

Elastic

Read more about End to End Incident Response Using Elastic Security

5 Telltale Signs You're Running a Cloud-Hosted - not a Cloud-Native - SIEM

Jul 6, 2022 By Mickey Perre In Devo

The necessity of a SIEM for organizations and their security teams has evolved dramatically over time. It has gone from edge use cases and compliance to the current form of threat detection, incident response, and threat hunting. As the use cases have changed, so has the architecture. As a result, organizations that have been quite familiar with running their SIEM on-premises are now looking for modern architectures to reduce the workload on their analysts. The simple choice: SaaS, of course.

Read Post